Job Description An employer is looking for a Security Engineer for a remote, contract opportunity. The client is a large bank and Securing APIs is essential to "shifting left" the technology development. The Individual will lead technical conversations to determine API security items, help establish an API management strategy. They will write best practices and define API patterns while also creating the business and security requirements. They will write requirements with threat modeling in mind to assist engineers with building securely. They will meet with stakeholders and determine criticality of controls and work with application owners to create patterns.They will collaborate with technical and business stakeholders to address Information Security risks while achieving business objectives, meeting regulatory requirements, and addressing emerging threats. Responsible for providing expertise and support on decisions and priorities regarding the enterprise's overall Information Security strategy and posture. Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues, and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types. Responsibilities include, but are not limited to: Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.   Acts as an internal consultant, advocate, mentor, and change agent. Viewed as an Information Security expert and critical technical resources across multiple technical areas and business segments. Partners with other groups to ensure solid, cross-functional decisions are made as a team. Maintains and demonstrates a strong understanding of enterprise systems, policies, standards, regulatory requirements, and business drivers. Represents Information Security at enterprise review meetings (ITAC, NPI Reviews, Production Readiness, etc.). Adheres to and promotes compliance to Information Security policies, standards and best practices. Leads process improvement and risk mitigation initiatives. Coaches and mentors more junior staff. This position will perform the following functions: o API Security o API Scanning o Process Automation o Testing o API Architecture o API Design and Lifecycle management o Work with other dev teams to integrate new security-focused API initiatives and provide support to IT Teams through API integrations. o Provide clear and concise documentation on delivered code as well as customer onboarding and support documentation o Work collaboratively in an agile environment We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .     To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ . Skills and Requirements 8+ years relevant experience Experience with API Development An understanding of security tooling for APIs An understanding of the below concepts:  API Discovery  API Scanning  API Runtime Experience with Python and Terraform for automation Experience creating custom APIs using AWS Lambda Excellent communications skills: Ability to effectively communicate with technical and non-technical stakeholders. Team player: willing to also take tickets and generally jump in when needed Experience in building and deploying Jenkins pipelines Experience deploying containerized applications in ECS Previous experience automating security controls within CI/CD pipelines Previous microservice development Previous experience in application vulnerability remediation null We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.